Have there been remotely exploitable, zero-click, wormable vulnerabilities in popular Linux distros?

What I’m asking is if there have ever been any vulnerabilities of the following kind, especially recently, and if so how many or how common they have been.

The vulnerability:

  • Must be present in the OS/distro in its default configuration. For example, a vulnerability in Photoshop doesn’t count, because Photoshop isn’t installed by default in any OS that I know of.
  • Must be exploitable from the network (either from LAN or WAN, it doesn’t matter, all it matters is that no physical access should be required).
  • Must be a zero-click flaw, so user interaction should not be required at all. Not even triggered by social engineering: the OS should be able to be compromised just because it’s running and connected to a network, with nobody at the keyboard).
  • Must be in a relatively popular OS/distro, so "Rare Distro Linux" or "Temple OS" don’t count. I’m interested in Linux-based or Linux-related environments, but if you also have examples from other areas you can mention them for completeness (I think some WinXP release would qualify but I’m not sure).

networking – Problems accessing PoE cameras through NVR remotely

I purchased a Reolink NVR system which includes 4 cameras for a rental property far from home.
I have internet at the property which the system is hooked up to, and I’m able to access the camera stream when I’m at the property in the network 100% of the time.

The problem is when I want to view the cameras when outside of the network (my home, on the road, across the ocean). It doesn’t always work, maybe 1/20 times that I’ve tried.

I tried contacting customer support to help me set it up, but their assistance is a joke, and through email only.

https://support.reolink.com/hc/en-us/articles/900000627703-Which-Default-Ports-Used-by-Reolink-Cameras-should-be-Allowed-to-Go-Through-the-Firewall

I’m guessing the problem lies in a setting on the router.
According to this link, I don’t need to forward ports on the router since I have UID enabled, so long as the router allows connection via any UDP ports. I have a Netgear C3700 router. I don’t see any mention of UDP ports on its interface.

I also tried to port forward ports 80(HTTP), Media server (9000), and RTMP (1935) to the NVR (192.168.0.100)

Currently, the set up:
Router: 192.168.0.1

NVR: (static) 192.168.0.100

and 4 cameras:

172.16.25.2:9000 (hooked up to NVR)

172.16.25.3:9000 (hooked up to NVR)

172.16.25.4:9000 (hooked up to NVR)

192.158.0.37:9000 (hooked up to a secondary router, and that router to NVR)

Any ideas what I can do?

ssh – Reliablely map network drive on Windows machine remotely from Linux machine

Background

Fairly new to networking. I have two machines. One is a Linux machine running Debian (Computer A), the other is a Windows machine (Computer B). On the Linux machine is a Samba share and both machines are on the same network. I can log into Computer B via an SSH session from Computer A using key pair authentication. I can also access the Samba share from Computer B directly or by mapping it to a drive letter in Windows.

I want to run a PowerShell script that resides on Computer B via an SSH session from Computer A. The script will happily run and executes commands to mount the Samba share on Computer B as a PSDrive. Computer B will be reverted to a “base” snapshot every time before this script is run (So the drive is never already mounted before the script is executed).

Problem

When executing this line in the PowerShell script from within an SSH session from Computer A

New-PSDrive -Name $driveLetter -PSProvider FileSystem -Root $sharePath -Credential $cred

I sometimes get this familiar message

New-PSDrive : A specified logon session does not exist. It may already have been terminated.

I’m aware that this is a classic Double-Hop problem scenario and that there are ways around it. Security isn’t too much of a concern as this is all on an isolated network. What’s stumping me is the inconsistency.

So far

With some tinkering, I found that I could consistently create the PSDrive successfully after rebooting Computer B and then executing the PowerShell script. This was the case every single time and was the only way I could get the PSDrive to mount predictably. This isn’t a major issue, but isn’t exactly ideal for our automated process.

The PSDrive has successfully mounted without rebooting Computer B beforehand, but probably over 90% of the time it doesn’t.

What can I do to make this step more consistent and reliable, preferrably without rebooting Computer B every time after the PowerShell script is run? Or is this simply a quirk of one of the components that I’m just going to have to work around?

php – Changing $_SERVER[‘REMOTE_ADDR’] remotely

php – Changing $_SERVER(‘REMOTE_ADDR’) remotely – Information Security Stack Exchange

remote control – Starting apps remotely via simple network protocols

I’m working on a project where I have several Android devices with certain apps installed on them that need to be started remotely via WiFi (or possibly Bluetooth) in response to a physical event detected by various sensors.

Does anyone if there is an app that can start other apps upon receiving some kind of network command? The protocol involved needs to be fairly simple as the commands are sent by a microcontroller-based system with no OS, so I would need to implement anything from scratch. UDP or simple TCP (i.e. HTTP) is fine, but I want to avoid having to deal with things like SSH or VNC.

I’ve found an app called ‘Remote App Launch’ which uses HTTP and does exactly what I need, but the issue is that it has quite a delay (randomly varying from around 1 to 10 seconds) when starting an app (especially with the screen off).

I guess it would be possible to write a dedicated app for this, but I don’t have any kind of experience with developing for mobile devices.

kubuntu – How do I stop KDE wallet password request when connected remotely through VNC

I am using Kubuntu 20.04 (but had same issue in Kubuntu 18.04). I am running TigerVNC server on it and whenever I connect to the VNC server, I sometimes get a KDE Wallet popup requesting a password (image). It always shows up when I open Google Chrome. This doesn’t happen when I am using the PC physically.

Based on my understanding, the KDE Wallet is the password manager for KDE plasma and it has the same master password as your login by default. When you login physically, the KDE wallet gets unlocked. This doesn’t happen with VNC and whenever you open an application that needs to use the wallet, it will request for password. Is there a way to unlock the KDE Wallet at the creation of the VNC server or whenever a user connects to the server?

c++ – Unable to connect remotely to a windbg server, possibly because of a dll version mismatch?

My goal is to control a running instance of WinDbg from another C++ program. I saw that the API DebugConnectWide can let you connect remotely to a debug client, so I tried using it and I made sure to start a server from the running windbg client by entering this command:

.server npipe:pipe=testname.

I am able to open a 2nd instance of windbg and connect to the first instance remotely by entering the following on the command line arguments:

-remote npipe:Pipe=sup,Server=DESKTOP-JT5S9BR.

However when I try to connect programmatically from my C++ console application, I get the following error from the HRESULT: The server is currently disabled.

#include <dbgeng.h>
#include <iostream>

int main()
{
    HRESULT hr;
    IDebugClient7* debugger = nullptr;

    hr = DebugConnectWide(L"npipe:Pipe=testname,Server=DESKTOP-NAME", IID_PPV_ARGS(&debugger));

    std::getchar();
}

I read in the doc that it’s important for all of the instances of windbg to have the same version if they want to connect remotely. So it’s possible that my problem is related to that. I saw that there are many versions of dbgeng.dll and dbgeng.lib on my computer, so how can I make sure that my C++ app is running the same version of dbgeng?

DreamProxies - Cheapest USA Elite Private Proxies 100 Private Proxies 200 Private Proxies 400 Private Proxies 1000 Private Proxies 2000 Private Proxies ExtraProxies.com - Buy Cheap Private Proxies Buy 50 Private Proxies Buy 100 Private Proxies Buy 200 Private Proxies Buy 500 Private Proxies Buy 1000 Private Proxies Buy 2000 Private Proxies ProxiesLive Proxies-free.com New Proxy Lists Every Day Proxies123